The more complex a format is, the less chance there is that its security features will work in all cases. A vulnerability has turned up that lets sneaky people alter digitally signed PDF documents. A German team discovered a “shadow attack” vulnerability in the format. It’s easiest to do this if the document’s creator designed it to be altered after signing. The victim sees one set of content and signs it; the dishonest creator gets the document back, changes its appearance, and passes it on.
Continue reading
- Gary McGath, Freelance Technical Writer
Are you looking for expert, reliable writing on computer technology? Drop me a note. - Follow Mad File Format Science on WordPress.com
-
Join 144 other subscribers
-
Recent Posts
RSS feed
Technical issues with the Hunter Biden email
The PDF Association has an analysis of the file which the New York Post has uploaded to Scribd, which purports to show a message from Vadim Pozharskyi to Hunter Biden and Devon Archer. Discussions of what it signifies politically and whether Twitter was justified in blocking the link are for another place. The issue in this blog is what the file says about the authenticity of the email. The answer is: Nothing at all.
Continue reading →Comments Off on Technical issues with the Hunter Biden email
Posted in commentary
Tagged email, PDF